$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: UtKWK/ps+h8+g2ADhLN+6Rxpszfp3fbuF9tW8cSGVfg= Subject key identifier: F2:2B:5A:DE:93:D4:F3:83:39:37:9B:02:6C:DB:44:81:9D:31:F7:AA Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 067A Signing time: Fri 22 Aug 2025 22:36:09 +0000 Manifest this update: Fri 22 Aug 2025 22:36:08 +0000 Manifest next update: Fri 29 Aug 2025 22:36:08 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: xvJl+DYIF/hLchpw18cV0F4NMfdMf4AUPnFeIzZK/jw=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 6Nwx6Bdy1j4/Wbla1onGos1GwfTZf0C7yW2rjUd5bAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Aug 22 22:36:08 2025 GMT Not After : Aug 29 22:36:08 2025 GMT Subject: CN=68a8f0d8-8bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:66:ee:87:65:e1:2c:52:66:62:79:7c:9d:c4: 7b:e5:e3:71:4b:88:08:8d:ab:80:73:b2:f4:b1:ef: 0b:a5:9f:db:01:8a:42:9d:0c:f2:48:a6:09:7b:1a: 4e:5f:37:8e:5d:07:39:3c:67:fa:cf:00:f8:91:eb: 64:82:ff:08:e7:f1:27:65:3d:f4:43:e3:d2:c9:b2: d5:30:10:41:c6:3a:9b:24:a0:26:30:3a:d5:44:89: 9d:41:11:eb:9d:28:e0:67:fe:48:59:60:2e:5c:f8: 6a:2c:ec:7a:8e:c8:b6:55:a0:bf:cb:c4:f8:f2:3e: be:3d:b2:6f:13:eb:87:2c:0f:0e:a6:5d:d0:5e:a3: 66:23:0b:99:8f:06:4e:0d:df:54:7f:a0:a5:9c:ef: 37:fa:7e:c0:3e:fd:0a:9e:de:8c:6f:49:fc:90:b0: f0:af:71:98:3f:a8:ed:07:33:44:c3:f5:cb:30:2b: 04:0b:30:5c:18:ca:eb:18:c0:86:aa:a4:21:b7:0f: f1:83:56:d6:7c:27:21:84:62:df:24:b5:db:02:bb: 02:70:1a:0a:a7:99:85:ad:fa:7b:8e:d4:33:4b:74: 11:bd:9e:c9:d4:17:00:f0:78:75:8a:0b:e6:1d:4e: 64:df:5d:62:d0:b4:28:85:ba:87:a1:9e:17:94:f9: 6c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2B:5A:DE:93:D4:F3:83:39:37:9B:02:6C:DB:44:81:9D:31:F7:AA X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c7:46:73:dd:da:80:4b:a7:25:7e:56:af:bf:c0:5d:77:15: 87:a5:e6:b2:79:ae:bf:63:46:3f:ce:0e:54:fe:63:3f:3f:6f: 01:f1:fe:e7:e4:1b:99:91:1f:d5:1b:4d:95:59:73:84:58:d0: c8:d8:4e:74:8e:29:1b:a6:6b:40:ae:e3:a2:0e:97:20:6d:ba: 06:1d:45:4d:74:45:e3:f9:93:e6:87:06:bd:5a:9b:df:e5:fd: 8b:e9:dd:f3:3a:85:c3:01:a7:80:a4:4d:36:eb:d3:64:d0:02: 90:6f:73:b8:16:bb:cb:a7:02:9b:27:bd:e4:16:3e:dc:74:de: 5e:67:f9:6a:2f:10:d4:e1:12:04:eb:5d:ca:1a:7a:d6:23:d0: 38:30:3e:7a:1e:94:ea:9c:da:1d:0a:c1:ad:9b:f1:f0:8a:68: 04:ff:6a:23:bd:51:dd:6b:d4:5d:70:f7:33:ca:6b:b2:af:a3: 25:8d:f4:7f:bd:3e:7e:1b:9a:ed:c2:35:5f:0c:cc:ee:57:2d: 6e:64:69:a0:d9:1b:ff:00:63:2a:45:c9:37:17:d8:aa:32:10: bd:fb:0f:75:51:2c:02:82:a8:92:94:c5:f3:b4:fa:59:a3:60: da:3f:6c:48:33:d1:a7:d3:f7:c8:71:5e:77:b9:bd:25:95:7d: 93:7e:82:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwODIyMjIzNjA4WhcNMjUwODI5MjIzNjA4WjAYMRYwFAYD VQQDEw02OGE4ZjBkOC04YmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymbuh2XhLFJmYnl8ncR75eNxS4gIjauAc7L0se8LpZ/bAYpCnQzySKYJexpO XzeOXQc5PGf6zwD4ketkgv8I5/EnZT30Q+PSybLVMBBBxjqbJKAmMDrVRImdQRHr nSjgZ/5IWWAuXPhqLOx6jsi2VaC/y8T48j6+PbJvE+uHLA8Opl3QXqNmIwuZjwZO Dd9Uf6ClnO83+n7APv0Knt6Mb0n8kLDwr3GYP6jtBzNEw/XLMCsECzBcGMrrGMCG qqQhtw/xg1bWfCchhGLfJLXbArsCcBoKp5mFrfp7jtQzS3QRvZ7J1BcA8Hh1igvm HU5k311i0LQohbqHoZ4XlPlskQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIrWt6T 1PODOTebAmzbRIGdMfeqMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCx0Zz3dqAS6clflavv8BddxWHpeayea6/Y0Y/zg5U/mM/P28B8f7n 5BuZkR/VG02VWXOEWNDI2E50jikbpmtAruOiDpcgbboGHUVNdEXj+ZPmhwa9Wpvf 5f2L6d3zOoXDAaeApE0269Nk0AKQb3O4FrvLpwKbJ73kFj7cdN5eZ/lqLxDU4RIE 613KGnrWI9A4MD56HpTqnNodCsGtm/HwimgE/2ojvVHda9RdcPczymuyr6MljfR/ vT5+G5rtwjVfDMzuVy1uZGmg2Rv/AGMqRck3F9iqMhC9+w91USwCgqiSlMXztPpZ o2DaP2xIM9Gn0/fIcV53ub0llX2TfoLR -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:17 2025 by rpki-client